This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/7j_ch2cw442vemOdRIma11J6gJw.roa File: 7j_ch2cw442vemOdRIma11J6gJw.roa (raw, json) Hash identifier: Erq8kxzKAC0Tg/CUgTpWDzbQlg/Dbixo8FzbYGdYTlQ= Subject key identifier: EE:3F:DC:87:67:30:E3:8D:AF:7A:63:9D:44:89:9A:D7:52:7A:80:9C Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Certificate serial: 019AB488CCE44C34C31D094FC05782AEDAB7 Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/7j_ch2cw442vemOdRIma11J6gJw.roa Signing time: Mon 24 Nov 2025 06:24:15 +0000 ROA not before: Mon 24 Nov 2025 06:24:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 197695 IP address blocks: 79.174.77.0/24 maxlen: 24 79.174.78.0/23 maxlen: 24 79.174.80.0/21 maxlen: 24 79.174.88.0/21 maxlen: 24 89.104.64.0/21 maxlen: 24 89.104.74.0/24 maxlen: 24 89.104.94.0/24 maxlen: 24 89.111.152.0/22 maxlen: 24 89.111.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.mft rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b4:88:cc:e4:4c:34:c3:1d:09:4f:c0:57:82:ae:da:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Validity Not Before: Nov 24 06:24:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ee3fdc876730e38daf7a639d44899ad7527a809c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d7:c8:e4:d4:3b:a1:40:c7:9d:bf:2a:49:cf: e3:69:c1:6d:5c:43:69:3c:7f:6d:ce:7d:8e:ab:af: 01:70:6c:60:5c:b0:ad:8b:e1:3e:a3:26:f6:92:4c: ea:f0:20:c9:58:e9:c2:76:e8:7f:99:94:ef:91:bd: 75:99:a3:b7:99:65:bc:7d:52:f8:dd:ab:b4:20:7b: 85:43:8f:60:95:34:cb:70:80:65:e6:76:45:af:5b: c2:14:37:30:e4:25:70:ee:2c:3a:09:49:56:d5:7b: e8:66:b1:7a:49:0a:52:fd:de:5f:c4:42:82:b2:6a: be:8b:07:52:ab:31:a3:2c:96:49:40:1d:c1:13:1a: 04:76:bb:74:51:aa:63:e0:1a:b2:22:0b:af:3d:0b: ea:18:db:ef:23:ef:25:3f:22:27:12:e0:09:17:dc: 6c:45:70:8d:44:76:25:ab:35:ba:a9:92:67:ff:92: 40:7f:5d:1e:8e:d4:df:c1:2a:0b:b1:0e:93:4a:7a: 35:b5:dc:9d:c2:ee:b5:e4:63:ea:ce:c5:40:a2:52: 45:c2:37:9d:e7:e3:68:95:40:80:d6:02:45:35:94: 78:f5:27:ba:3e:91:a3:e6:f7:f4:d1:fe:07:47:86: 59:04:74:dd:30:cd:64:6c:31:72:b8:39:a1:a5:b7: 16:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3F:DC:87:67:30:E3:8D:AF:7A:63:9D:44:89:9A:D7:52:7A:80:9C X509v3 Authority Key Identifier: keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/7j_ch2cw442vemOdRIma11J6gJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.174.77.0-79.174.95.255 89.104.64.0/21 89.104.74.0/24 89.104.94.0/24 89.111.152.0/22 89.111.168.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:bf:d3:dd:50:14:a9:0b:6d:b1:f2:4a:48:5d:a9:9f:f7:79: 14:df:26:a5:76:64:f8:2e:c6:07:d1:2b:83:3d:1f:d7:6b:fd: fc:19:0e:80:59:97:f9:93:53:0a:ac:cd:17:78:8a:2e:9b:55: 78:e9:f5:bd:ae:ef:f2:73:0e:a0:a0:cb:70:28:4d:01:67:c3: 95:43:80:76:55:5c:75:dc:7d:25:89:6b:f0:c8:d8:f2:be:30: d8:8a:d9:15:7e:1e:03:f4:79:1a:fc:8a:89:4d:83:14:38:42: 78:2a:5d:ab:fb:33:fb:cf:34:36:7e:ee:58:81:a9:be:7c:08: 62:e6:c7:0a:a7:90:b6:75:49:fd:9f:0d:a5:44:d4:a7:37:77: 3c:8c:47:ef:43:0f:9c:98:7c:f7:f0:9d:fa:08:76:8e:02:f5: 9a:7a:1a:5c:88:f3:e9:de:34:29:a9:da:2a:37:16:67:5e:0f: c8:ee:3a:30:f8:d8:19:bf:96:95:72:d0:36:ba:d5:d3:fc:d2: da:ae:67:9d:c2:ce:b7:2e:db:83:1e:41:b7:54:c2:24:3e:b8: 88:00:e8:fb:ca:87:77:66:3e:6b:5c:f1:2f:7c:da:06:1b:87: 21:55:df:6d:09:f4:99:67:f7:fd:7c:37:22:28:15:63:f9:e0: 07:2f:90:04 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZq0iMzkTDTDHQlPwFeCrtq3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZmFkMjNlMTFjZjBkMjRhNDc3NTk0ZWJhMDlmOTlhY2M2 ZjFmZmYwHhcNMjUxMTI0MDYyNDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTNmZGM4NzY3MzBlMzhkYWY3YTYzOWQ0NDg5OWFkNzUyN2E4MDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3dfI5NQ7oUDHnb8qSc/jacFtXENp PH9tzn2Oq68BcGxgXLCti+E+oyb2kkzq8CDJWOnCduh/mZTvkb11maO3mWW8fVL4 3au0IHuFQ49glTTLcIBl5nZFr1vCFDcw5CVw7iw6CUlW1XvoZrF6SQpS/d5fxEKC smq+iwdSqzGjLJZJQB3BExoEdrt0Uapj4BqyIguvPQvqGNvvI+8lPyInEuAJF9xs RXCNRHYlqzW6qZJn/5JAf10ejtTfwSoLsQ6TSno1tdydwu615GPqzsVAolJFwjed 5+NolUCA1gJFNZR49Se6PpGj5vf00f4HR4ZZBHTdMM1kbDFyuDmhpbcW0QIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFO4/3IdnMOONr3pjnUSJmtdSeoCcMB8GA1UdIwQY MBaAFL360j4Rzw0kpHdZTroJ+ZrMbx//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEt NGY0ZTcxZTMyMDg0LzEvN2pfY2gyY3c0NDJ2ZW1PZFJJbWExMUo2Z0p3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEtNGY0ZTcxZTMyMDg0 LzEvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsMAwDBABPrk0D BAVPrkADBANZaEADBABZaEoDBABZaF4DBAJZb5gDBANZb6gwDQYJKoZIhvcNAQEL BQADggEBAA+/091QFKkLbbHySkhdqZ/3eRTfJqV2ZPguxgfRK4M9H9dr/fwZDoBZ l/mTUwqszRd4ii6bVXjp9b2u7/JzDqCgy3AoTQFnw5VDgHZVXHXcfSWJa/DI2PK+ MNiK2RV+HgP0eRr8iolNgxQ4QngqXav7M/vPNDZ+7liBqb58CGLmxwqnkLZ1Sf2f DaVE1Kc3dzyMR+9DD5yYfPfwnfoIdo4C9Zp6GlyI8+neNCmp2io3FmdeD8juOjD4 2Bm/lpVy0Da61dP80tquZ53Czrcu24MeQbdUwiQ+uIgA6PvKh3dmPmtc8S982gYb hyFV320J9Jln9/18NyIoFWP54AcvkAQ= -----END CERTIFICATE-----Generated at Sat Dec 6 17:34:25 2025 by rpki-client